Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/fmo5TX8EgOiBngaeFNAgrEEApGM.roa
File: fmo5TX8EgOiBngaeFNAgrEEApGM.roa (raw, json)
Hash identifier: AnfuCCSDrrsgKZT/PWAcHDxzTNSkdDr5bigyhZy7Has=
Subject key identifier: 7E:6A:39:4D:7F:04:80:E8:81:9E:06:9E:14:D0:20:AC:41:00:A4:63
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 02B2E9C1
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/fmo5TX8EgOiBngaeFNAgrEEApGM.roa
Signing time: Tue 26 Apr 2022 10:39:12 +0000
ROA not before: Tue 26 Apr 2022 10:39:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 93.115.6.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45279681 (0x2b2e9c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Apr 26 10:39:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e6a394d7f0480e8819e069e14d020ac4100a463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:6f:6a:a8:e2:26:5f:8a:75:e9:bf:97:3a:
f5:33:80:54:7f:22:cd:33:ca:ba:5e:87:4e:cd:f0:
81:37:12:f4:35:35:92:81:b1:5c:9e:2f:ce:2d:43:
49:98:fe:ae:1b:d4:d5:74:e6:cd:68:38:67:e1:bd:
58:93:e8:e6:ed:f9:9e:0c:10:e8:0d:4b:0e:55:8a:
d4:56:09:fe:51:cf:e4:f1:1b:1c:64:90:eb:66:cc:
42:83:1b:ad:4a:de:57:25:c1:c9:17:cf:62:f9:7b:
21:06:6f:ab:5b:de:3f:25:ab:88:49:13:4c:7b:36:
b2:f3:33:45:33:78:a0:54:da:44:29:db:68:56:65:
ee:2e:b9:c9:ee:f5:73:65:ff:cf:1b:4d:a4:39:c6:
c5:03:8e:fd:0b:00:28:32:cc:67:bf:ee:3f:ab:73:
f4:cd:00:f3:f4:a2:97:49:2b:71:dd:9d:85:38:e1:
f4:e5:f8:05:f4:c0:02:11:fc:ad:8a:a7:5f:83:f3:
aa:e8:26:b5:07:43:dd:57:24:52:d4:e1:de:77:de:
f2:32:03:4e:41:8a:ba:e9:f6:46:9f:c7:2b:b8:03:
07:f7:50:11:be:c9:9c:6a:e3:a5:1d:ad:2c:e4:be:
7f:f6:33:af:1d:a0:dc:bd:b0:54:14:22:26:0a:ea:
9c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6A:39:4D:7F:04:80:E8:81:9E:06:9E:14:D0:20:AC:41:00:A4:63
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/fmo5TX8EgOiBngaeFNAgrEEApGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.115.6.0/24
Signature Algorithm: sha256WithRSAEncryption
11:20:28:4f:6e:49:57:aa:37:8a:93:23:d5:98:f1:89:4a:19:
bb:21:df:aa:86:c2:76:e4:3f:8e:5b:5c:c4:ca:3b:6d:d3:9f:
0a:7e:8e:76:94:31:d2:10:d0:4b:34:31:d3:ff:1e:89:fa:3f:
0a:d3:36:34:83:a6:e5:71:84:25:cd:5b:4c:8b:ff:6f:a5:a3:
fb:26:39:cc:82:66:ed:65:39:bb:01:35:6f:d5:d9:a9:f6:1e:
ec:91:16:31:63:06:c5:1e:ca:c6:46:09:f2:db:5b:cc:5d:88:
09:64:72:24:dc:da:e7:13:2f:23:03:79:a6:a5:f0:da:dc:d4:
78:67:68:49:3c:23:93:22:7a:97:1a:a4:ee:8b:10:f6:2c:ac:
1c:ec:96:68:7a:5a:6b:28:1e:a5:83:7d:41:42:c0:c9:c5:db:
4d:24:a5:41:8e:bd:db:7b:25:00:0b:db:3f:f1:f7:51:18:91:
97:a0:09:91:1b:9d:41:95:b9:ae:d0:33:ef:ce:bf:d8:d1:8a:
79:9f:72:bf:d5:51:19:c9:13:2d:67:34:cf:70:79:78:b5:39:
c4:50:f2:71:2e:61:f7:26:c8:ff:94:06:9d:45:b4:53:43:b7:
d6:3a:1f:e5:32:c0:34:55:77:75:84:fa:44:cc:e7:59:83:ea:
3f:40:17:c6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEArLpwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDRkYjc2MjMyNDFkN2U2Njc4ZmMyNTc1MWZhNGUwYjY2NjUxODZiMB4XDTIyMDQy
NjEwMzkxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2U2YTM5NGQ3ZjA0
ODBlODgxOWUwNjllMTRkMDIwYWM0MTAwYTQ2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALmMb2qo4iZfinXpv5c69TOAVH8izTPKul6HTs3wgTcS9DU1
koGxXJ4vzi1DSZj+rhvU1XTmzWg4Z+G9WJPo5u35ngwQ6A1LDlWK1FYJ/lHP5PEb
HGSQ62bMQoMbrUreVyXByRfPYvl7IQZvq1vePyWriEkTTHs2svMzRTN4oFTaRCnb
aFZl7i65ye71c2X/zxtNpDnGxQOO/QsAKDLMZ7/uP6tz9M0A8/Sil0krcd2dhTjh
9OX4BfTAAhH8rYqnX4PzqugmtQdD3VckUtTh3nfe8jIDTkGKuun2Rp/HK7gDB/dQ
Eb7JnGrjpR2tLOS+f/Yzrx2g3L2wVBQiJgrqnFECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR+ajlNfwSA6IGeBp4U0CCsQQCkYzAfBgNVHSMEGDAWgBTATbdiMkHX5meP
wldR+k4LZmUYazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dFMjNZakpCMS1abmo4SlhVZnBPQzJabEdHcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvNmU4NzRlLTczZmUtNGRiYi1iNzRjLTA0MjNmMjYzZjJjYi8x
L2ZtbzVUWDhFZ09pQm5nYWVGTkFnckVFQXBHTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
NmU4NzRlLTczZmUtNGRiYi1iNzRjLTA0MjNmMjYzZjJjYi8xL3dFMjNZakpCMS1a
bmo4SlhVZnBPQzJabEdHcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF1zBjANBgkqhkiG9w0BAQsFAAOC
AQEAESAoT25JV6o3ipMj1ZjxiUoZuyHfqobCduQ/jltcxMo7bdOfCn6OdpQx0hDQ
SzQx0/8eifo/CtM2NIOm5XGEJc1bTIv/b6Wj+yY5zIJm7WU5uwE1b9XZqfYe7JEW
MWMGxR7KxkYJ8ttbzF2ICWRyJNza5xMvIwN5pqXw2tzUeGdoSTwjkyJ6lxqk7osQ
9iysHOyWaHpaaygepYN9QULAycXbTSSlQY6923slAAvbP/H3URiRl6AJkRudQZW5
rtAz786/2NGKeZ9yv9VRGckTLWc0z3B5eLU5xFDycS5h9ybI/5QGnUW0U0O31jof
5TLANFV3dYT6RMznWYPqP0AXxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org